Changelog
These docs are for v1.1. Click to read the latest docs for v1.2.

Release on April 20, 2022

Check out the new features and improvements from Bright.

  • UI Improvements -
    • Redesigned the status labels for scans, payments and target accessibility to be more clean and distinguishable.
    • Improved colors for disabled icons and external links to add more contrast.
    • Improved style of read-only fields, as well as dropdown menus and select boxes in the dark mode.
    • Reworked action menu for scans (behind three-dots icon), including the "Export as" options, to be more user-firendly.
    • Improvements to the Repeater setup wizard.
  • Performance Improvements - Various improvements for crawler performance and stability.

Release on April 6, 2022

Check out the new features and improvements from Bright.

  • Improvements of authentication flow configuration -

    • Added Repeater connectivity status to the selection of the Repeater in an authentication object configuration.
    • Added an option to easily re-order stages for Custom API and Browser-Based authentication flows.
    • Improved the "Maximum number of redirects" selector to be more convenient.
    • Improved the "Logout indicators" section to be more user-friendly and clean.

  • Return to the CLI setup/onboarding wizard whenever you want - Added an option to easily return to the "Repeater setup wizard" from the (Help) button in the toolbar.

  • Improved Repeater execution command for Docker option in the onboarding wizard - Improved the docker command to remove the container from the list of containers in the docker management console on shutting down of the docker.

  • Improved UX for optional elements in setup dialogues - Optional elements are now collapsed by default during scan creation and can be expanded manually when needed.

  • More options to open scans and projects in a new tab - Added support for middle-mouse click or Ctrl + left-mouse click to open Scans and Projects in a new tab.

  • Support for Firebase authentication - Added automatic support for Firebase authentication in Browser-based form authentication.

  • Performance Improvements - Various improvements for crawler performance and stability.

Release on March 23, 2022

Check out the new features and improvements from Bright.

  • View scan history by its ID - We introduced a History ID to all scans. Now, to view all runs of a specific scan, you simply need to filter scans by the History ID.
  • Performance Improvements - Various improvements for crawler performance and stability.

Release on March 14, 2022

Check out the new features and improvements from Bright.

  • NeuraLegion is now Bright! - We are happy to announce that we continue to help organizations (and their software developers) secure their applications and APIs under the name of Bright Security! Read our blog post about the Bright future.
  • UI Improvements
    • We introduced more scan filters to make your search for specific scans more effective.
    • The authentication object setup is now even more consequent and clear.
  • Performance Improvements - Various improvements for crawler performance and stability.

Release on February 23, 2022

Check out the new features and improvements from NeuraLegion.

  • Use a login page URL to easily detect when the authentication session expires - You can now configure an authentication object to detect the re-login requirement once the application redirects you to the login page, without any explicit indicators. This can be easily done with the new Authentication Triggers option "Detect using Request URL pattern".
  • General UI improvements - Enjoy the improved authentication configuration and other UI enhancements we introduced to make your experience better!
  • General performance improvements - Various improvements for crawler performance and stability, as well as significant improvement to LDAP testing.

Release on February 9, 2022

Check out the new features and improvements from NeuraLegion.

  • Sophisticated API Schema Linter - The NeuraLegion Schema Linter (Editor) is a smart tool designed to parse, validate and edit an uploaded API schema, making it easy for you to configure high quality, efficient scans that will ensure the best results. Explore the Linter's features and capabilities in our docs.
  • General UI improvements - Enjoy the improved scan filters and other UI enhancements we introduced to make your experience better!
  • General performance improvements - Various improvements for crawler performance and stability, as well as significant improvement to SQLI testing.

Release on January 27, 2022

Check out the new features and improvements from NeuraLegion.

  • Reachable hosts validation for an API schema during scan configuration - You can now easily define if an uploaded API schema contains unreachable or unauthorized hosts before running a scan.
  • General UI improvements - Enjoy the improved Scans table configuration and other UI enhancements we introduced to make your experience better!
  • General performance improvements - Various improvements for engine performance and stability, as well as significant improvement to XSS, LFI and RFI testing.

Release on January 6, 2022

Check out the new features and improvements from NeuraLegion.

  • Multi-step browser-based authentication - We extended the browser-based authentication configurations to support multiple steps, where you can easily specify your application’s unique login sequences.
  • General UI improvements - Check out our design improvements to the New Scan window to improve your user experience!

Release on December 22, 2021

Check out the new features and improvements from NeuraLegion.

NeuraLegion App

  • New scan status "Disrupted" - You can now easily distinguish scans that are stopped due to some recoverable issues on the user's side. For example, a scan is disrupted in the following cases:
    • When the repeater is no longer available during an active scan
    • When the target is not responding for X minutes (5 minutes by default)
    • When the scan finds no valid entry-points, due to incorrect configuration (missing authentication, no valid responses, etc.)
    • When a scheduled scan cannot start due to a configuration issue (file unavailable, repeater unavailable, etc.)
      The disruption event details are also recorded to the Engine Notifications.
  • General UI improvements - Check out our design improvements to the New Scan window and Activity Feed aimed to improve your user experience!

Scan Engine

  • Browser-based authentication improvements - We improved our form field detection algorithm to be able to look up the target field not only by name but also by labels, placeholders and even unique HTML object ids, all to make the process of configuring the authentication form quick and easy! Just write the name of the field as you see it, and our browser will find it in the form automatically! Easy!

Release on December 13, 2021

Check out the new features and improvements from NeuraLegion.

NeuraLegion App

  • New version of Okta integration app - You can now manage your team’s access to NeuraLegion's scanner using Okta SSO. The NeuraLegion integration app is now available on the Okta marketplace. With this app, you can easily configure SSO integration via both OIDC and SAML protocols. You can also take advantage of the provisioning feature to automatically synchronize users and groups between your Okta application and NeuraLegion organization.
  • Simplified new scan window - Scans can now be set up faster and easier even in the advanced mode.
  • Project level API keys - We added the ability to create and use API keys on a project level.
  • General UI improvements - Enjoy the reworked behavior of the "Save as template" button and some other improvements for your better experience.

Scan Engine

  • General performance improvements - Various improvements for Engine performance and stability.